aim
Advanced tools
Comparing version 0.0.3 to 0.0.4
{ | ||
"name": "aim", | ||
"version": "0.0.3", | ||
"description": "this is a demo programe", | ||
"main": "index.js", | ||
"devDependencies": {}, | ||
"main": "dist/index.js", | ||
"description": "Dependency free focus manager with built-in universal key navigation.", | ||
"scripts": { | ||
"test": "echo \"Error: no test specified\" && exit 1" | ||
"dev": "task", | ||
"watch": "builder-boy src/index.js dist/index.js -t node -r -w", | ||
"build": "builder-boy src/index.js dist/index.js -t node -r && npm run build-util", | ||
"build-util": "builder-boy src/util.js dist/util.js -t node -r" | ||
}, | ||
"author": "zhenzhong", | ||
"license": "ISC" | ||
"files": [ | ||
"dist" | ||
], | ||
"devDependencies": { | ||
"brisky-render": "^2.2.67", | ||
"builder-boy": "latest", | ||
"hub.js": "^0.2.9", | ||
"nodemon": "^1.11.0", | ||
"pre-commit": "^1.1.3", | ||
"stamp": "^4.0.2", | ||
"standard": "^8.1.0", | ||
"task": "latest" | ||
}, | ||
"version": "0.0.4" | ||
} |
Major refactor
Supply chain riskPackage has recently undergone a major refactor. It may be unstable or indicate significant internal changes. Use caution when updating to versions that include significant changes.
Found 1 instance in 1 package
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
SPDX disjunction
LicenseSPDX disjunction for an artifact's license information
Found 1 instance in 1 package
No contributors or author data
MaintenancePackage does not specify a list of contributors or an author in package.json.
Found 1 instance in 1 package
No License Found
License(Experimental) License information could not be found
Found 1 instance in 1 package
Empty package
Supply chain riskPackage does not contain any code. It may be removed, is name squatting, or the result of a faulty package publish.
Found 1 instance in 1 package
New author
Supply chain riskA new npm collaborator published a version of the package for the first time. New collaborators are usually benign additions to a project, but do indicate a change to the security surface area of a package.
Found 1 instance in 1 package
No README
QualityPackage does not have a README. This may indicate a failed publish or a low quality package.
Found 1 instance in 1 package
SPDX disjunction
LicenseSPDX disjunction for an artifact's license information
Found 1 instance in 1 package
No tests
QualityPackage does not have any tests. This is a strong signal of a poorly maintained or low quality package.
Found 1 instance in 1 package
16939
4
430
2
1
117
8
2
3